Windows 2020 H2 - Sophos Antivirus service fails and puts computer into self isolation

Anything of use in the startup log?

C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp

Anything of use in the startup log?

C:\Windows\ServiceProfiles\LocalService\AppData\Local\Temp

Not sure - haven't had a chance to look at it in more detail... but this is from the earliest startup log when PC was having the problem.

We did get the laptop working again...but not ideal - and at moment Sophos want to just close the ticket because we manually got the device back to working state.- but it leaves me concerned as this happened to be the first device that got the Windows 2020 H2 update. As of yet, I don't know if an isolated incident or going to be a general problem

1.by taking the laptop out of Self-isolate policy on Sophos central.

2.manually restarting Sophos Device control service ( antivirus service still failed and showed as red status)

3. reboot Laptop

3. push a manual update from Sophos central.

4. could see on the laptop - Sophos receiving an update.

5. once update completed - after a couple of minutes - Sophos status showed all green (antivirus started) - and laptop back to normal.

2020-10-21 14:49:42 Entering wWinMain
2020-10-21 14:49:42 Entering CInfrastructureModule::ServiceMain
2020-10-21 14:49:42 Entering CInfrastructureModule::PreMessageLoop
2020-10-21 14:49:42 CInfrastructureModule::StartComponentManager: Creating marshalling wrapper instance
2020-10-21 14:49:42 CMarshallingWrapper::CMarshallingWrapper: AtlMarshalPtrInProc (m_IComponentManagerStream)() returned 0x80040155
2020-10-21 14:49:42 Exception caught in CInfrastructureModule::PreMessageLoop
2020-10-21 14:49:42 CEventLogger::LogEventError unable to log the following error to the EventLog: a0030000 CInfrastructureModule::PreMessageLoop (null) (null)

2020-10-21 14:49:42 Leaving CInfrastructureModule::PreMessageLoop
2020-10-21 14:49:52 Leaving CInfrastructureModule::ServiceMain
2020-10-21 14:49:52 Leaving wWinMain